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What is claimed is: 

1 . A method for controlling, and distributing information between a digital 
postage meter and a certifying station operated by a certifying authority CA for publishing 
information, so that a public key KeyoM*P of said digital postage meter can be 
determined by a party seeking to verify indicia printed by said digital postage meter from 
said published information with assurance that saidypublic key KeyoM*P has been 
certified by said certifying authority CA, said metnod comprising the steps of: 

a) defining and publishing a finue group [P] with a binary operation [+] 
and publishing a particular point P in said group; 

b) defining and publishing a/binary operation K*P, where K is an integer 
and P is a point in said group, such that K7P is a point in said group computed by 
applying said operation [+] to K copies of said point P, and computation of K from 
knowledge of the definition of said group [P], said point P, and K*P is hard; 

/ ^_ *~~r 

c) controlling a certifying station to publish a certificate CERTdm for said 
digital postage meter, wherein; / 

CERTdm = {*vm+ tca)*P; and wherein 
r D M is a random integer generated by said digital postage meter and r C A is a 
random integer generated by said certifying station; 

d) controlling/said certifying station to publish a message M; 

e) controlling said certifying station to generate an integer I D m » and send 
said integer to said digital postage meter, wherein; 

Idm = itA+ H(M)KeycA; and wherein 
H(M) is an integer derived from said message M in accordance with a publicly 
known algorithm H and KeycA is a private key of said certifying authority CA; 
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f) publishing a public key Key C A*P for said (Certifying authority CA; and 

g) controlling said digital postage metei/to compute a private key KeyoM, 

Key D M = r D M + Idm = tdm + Xca+ H(M)KeycA; and 

h) controlling said digital postage meter to print an indicium and digitally 
sign said indicium with said key KeyoMi whereby 

i) said verifying party can compute said user's public key Key D M*P as 
Key DM *P = CERT D m + H(M) Key CA *P = 
(r D M+r CA )*^ H(M)Key CA *P 

from knowledge of H, M/[P], said public key Key C A*P> and CERTdm- 

ft. A method as described in claim^wherem said publicly known manner for 
deriving an integer from said published information comprises applying a hashing 
function to said message M. 

ii /* o /. 

p. A method as described in chum/2 wherein said message M includes 
information IAV identifying said digital postage m\ter pnd operating parameters 
applicable to said digital postage meter 
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' 4. A method as described in claim^ wherein said message M includes 
information IAV identifying aaid digital postage meter and operating parameters 
applicable to said digital postage meter. 
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£ A method as described in clainvl^wherein said groim^] is defined 



on an 



elliptic curve. 



Q^y^ A method as described in cl^m 1 wherein said message M includes 



information tying said user's public key Keyu*P to said information IAV. 



A article having an indicium imprinted thereon a/ evidence of attributes of 
said article, said indicium comprising: 



a) a signature generated with a private key of a first party; 



b) a certificate; 



c) information specifying attributes of saia article; wherein 




d) said private key of said first party is generated as a function of said 
certificate, said information, and a private key of a certifying authority, said function 
being chosen so that a party wishing tc/verify said indiciu^^an determine a public key 
corresponding to said private key of/said first party by operating on said certificate and 
said information with a corresponding public key of said certifying authority. 



8. A method for controlling a digital postage meter to print indicia signed 
with a private key KeyDj/based upon a published a finite group [P] with a binary 
operation [+] and a published particular poi^t P^said group and a published a binary 
operation K*P, where K is an integer and/r is a point in said group, such that K*P is a 
point in said group computed by applying said operation [+] to K copies of said point P, 
and computation of K from knowledge of the definition of said group [P], said point P, 
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d) said first function, said second function and said published related 
information are chosen so that a party seeking to verify said indicia can compute said 
digital postage meter public key by operatingtfon said published related information with 
said published public key of said authority. 



3 ^ 

jK. A method as described in claim y6 wnerei 
information includes information identifying said ^igital pi 
parameters applicable to said digital postage m#er. 




shed related 
Ineter and operating 




12. A method for certification by a certifying authority of a public key of a 
digital postage meter, said digital postage meter producing/ndicia signed with a 
corresponding private key of said digital postage meter, sftid certifying authority having a 
published public key and a corresponding private key, /aid method comprising the steps 
of: 



a) said certifying authority providing a user with an integer, said integer 
being a first function of said private key of said authority; 

b) said user computing a digi A\ postage _\ private key as a second 
function of said integer and downloading spd postage meter private key to said digital 
postage meter; and 

c) said certifying authority publishing related information; wherein 

d) said first function, said second function and said published related 
information are chosen so that a^arty seeking to verify said indicia can compute said 
digital postage meter public key by operating on said published related information with 
said published public key of /aid authority. 
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A method as described in claim J^f wjfferein $^id published related 
information includes information identifying said/aigital postage jx&ter and operating 
parameters applicable to said digital postage meter. 
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and K*P is hard, so that a public key KeyoM*P of said digital postage meter can be 
determined by a party seeking to verify indicia primed by said digital postage meter from 
published information with assurance that said public key KeyoM*P has been certified by 
a certifying authority CA, said method comprising the steps of: 

a) controlling said digital postage meter to generate a random number vou 
and send a point Tdm*P to a certifying station; 

b) controlling said digital postage meter to receive a certificate CERTdm 
from a certifying station operated by said certifying authority CA, wherein; 

CERTdm = (rDM+/cA)*P; and wherein 
r D M is a random integer generated by said digital postage meter and tca is a 
random integer generated by said certifying station; 

(k 

c) controlling said digital postage meter to receive an integer I D m from said 
certifying station, wherein; 

Idm = rcA+ H(M)KeycA; and wherein 
M is a message published by said certifying station and H(M) is an integer 
derived from said message M in accordance with a publicly known algorithm H and 
KeycA is a private key of said certifying authority CA; 

d) controlling said digital postage meter to compute a private key Key D M> 

Key D M =7 tdm + Idm = r D M + tca+ H(M)Key C A; and 

e) controlling ^aid digital postage meter to print an indicium and digitally 
sign said indicium with said Key KeyoMi whereby 



Key D M*P as 



f) said verifying party can compute said digital postage meter public key 



KeyiL*P = CERT DM + H(M) Key CA *P = 
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(r D M +r CA )*P + H(M)Key CA *^ ^ 
from knowledge of H, M, [P], said publicity KeycA*P, and CERTdm- 



9. A method for controlling a certifying station>6perated by a certifying 
authority CA to publish information relating to a digital postage meter for printing indicia 
signed with a private key KeyoM based upon a published a finite group [P] with a binary 
operation [+] and a published particular point P in sajtl group and a published a binary 
operation K*P, where K is an integer and P is a point in said group, such that K*P is a 
point in said group computed by applying said operation [+] to K copies of said point P, 
and computation of K from knowledge of the (definition of said group [P], said point P, 
and K*P is hard, so that a public key KeyoM^P of said digital postage meter can be 
determined by a party seeking to verify indicia printed by said digital postage meter from 
said published information with assurance that said public key KeyoM*P has been 
certified by a certifying authority CA, /aid method comprising the steps of: 

a) controlling said certifying station to receive a point Tdm*P from said 
digital postage meter, where Tdm /s a random number generated by said digital postage 
meter; / 

b) controlling said certifying station to generate and send to said digital 
postage meter a certificate/CERTcM* wherein; 

C^RTdm = 0"DM + rcA)*P; ^id wherein 
tca is a random /nteger generated by said certifying station; 



c) controlling said certifying station to generate and send to said digital 
postage meter an integer Idm> wherein; 

Idm = i"ca+ H(M)KeycA; and wherein 
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M is a message published by said certifying stattem and H(M) is an integer 
derived from said message M in accordance with a publicly known algorithm H and 
KeycA is a private key of said certifying authority JCA; whereby 

d) said digital postage meter /an compute said private key Key D M> 

Key D M = r D M + IdvT= tdm + tca+ H(M)Key C A; and 
and digitally sign said indiciuij/with said key KeyoM; and whereby 

e) said verifying party can compute said digital postage meter public key 

KeyDM*P as 

Keyn^*P = CERTdm + H(M) Key CA *P = 
(t d J+tca)*P + H(M)Key CA *P 
from knowledge/of H, M, [P], said public key KeycA*P, and CERTdm- 



1 




1 0. A method for certification by a certifying/authority of a public key of a 
digital postage meter, said digital postage meter producing indicia signed with a 
corresponding private key of said digital postage meter, said certifying authority having a 
published public key and a corresponding private l^ey, said method comprising the steps 
of: 



a) said certifying authority providing said meter with an integer, said 
iateger being a first function of said private key of said authority; 

b) said meter computing a cjlgital postage meter private key as a second 
function of said integer; and 



c) said certifying authority publishing related information; wherein 
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